Summary
This host is running Microsoft Windows Media Service and is prone to denial of service vulnerability.
Impact
Successful exploitation could allow remote attackers to cause denial of service conditions.
Impact Level: Application
Solution
Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://technet.microsoft.com/en-us/security/bulletin/ms00-013
Insight
The handshake sequence between a Windows Media server and a Windows Media Player occurs in a particular order. If a series of client handshake packets are sent in a particular misordered sequence, with certain timing constraints, the server attempts to use a resource before it has been initialized causing the Windows Media Unicast Service to crash.
Affected
Microsoft Windows 2000
Microsoft Windows NT 4.0
Windows Media Services 4.0 and 4.1
References
Severity
Classification
-
CVE CVE-2000-0211 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Microsoft Windows IP-HTTPS Component Security Feature Bypass Vulnerability (2765809)
- Microsoft Windows Media Service Handshake Sequence DoS Vulnerability
- Microsoft Security Bulletin MS06-033
- Microsoft FrontPage Information Disclosure Vulnerability (2825621)
- Microsoft Report Viewer Information Disclosure Vulnerability (2578230)